Update dependency org.pitest:pitest to v1.20.1 (#1328)

* Update dependency org.pitest:pitest to v1.20.1

* update build.gradle to resolve CVE‑2025‑48976

---------

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: FeliTam <[email protected]>

Author: renovate[bot]

build.gradle

@@ -172,7 +172,7 @@ def versions = [
         lombok                          : '1.18.38',
         mapStruct                       : '1.3.0.Final',
         pact_version                    : '4.1.34',
-        piTest                          : '1.20.0',
+        piTest                          : '1.20.1',
         probateCommonsVersion           : '2.2.2',
         restAssured                     : '5.5.5',
         serenity                        : '4.2.34',
@@ -322,6 +322,17 @@ dependencies {
     }
 }
 
+configurations.configureEach {
+    resolutionStrategy {
+        eachDependency { details ->
+            // Resolve CVE‑2025‑48976
+            if (details.requested.name == 'commons-fileupload') {
+                details.useVersion '1.6.0'
+            }
+        }
+    }
+}
+
 tasks.register('fortifyScan', JavaExec) {
     mainClass.set("uk.gov.hmcts.fortifyclient.FortifyClientMainApp")
     classpath += sourceSets.test.runtimeClasspath

config/owasp/suppressions.xml

@@ -18,9 +18,6 @@
         -->
         <cve>CVE-2025-48734</cve>
     </suppress>
-    <suppress until = "2025-10-15">
-        <cve>CVE-2025-48976</cve>
-    </suppress>
     <suppress until = "2025-10-15">
         <!--
             Apache Commons Lang ClassUtils.getClass(...) can throw an Error